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Newbridge Networks Corporation 

PCT/CA98/00937 

October 2, 1998 

MULTIPLE INTERNETWORKING REALMS 
WITHIN AN INTERNETWORKING DEVICE 



In response to the Written Opinion dated July 22, 1999, and subsequent extensions, we 
respectfully request that the above-identified application be amended as follows: 



IN THE SPECIFICATION 

Kindly replace disclosure page 1 as filed, with disclosure pages 1 and 1a submitted 
herewith; 



IN THE CLAIMS 



Please replace claims pages 63, 64 and 65 containing claims 1 to 18, with claims pages 
63, 64 and 65 containing claims 1 through 22, attached hereto. 
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Page 2 



REMARKS 



Page 1 of the disclosure has been revised under Rule 5.1(a)(ii) PCT in order to identify 
documents designated D1 and D2. 

In the claims, we can provide the following with respect to the claims submitted 
herewith: 



Claim 1 replaces claim 1 as filed; 
Claim 2 replaces claim 2 as filed; 
Claims 3 to 7 remain unchanged; 
Claims 8 to 1 3 replace claims 8 and 9 as filed; 

Claims 14 to 22 are the same as claims 10 through 18 as originally filed; 
Claim numbering and dependencies have been modified appropriately. 



The independent claims have been rewritten to define the present invention in terms of 
a method and system for forwarding packets through a communication system wherein 
internetworking service functions are provided to multiple users, and multiple forwarding tables 
are used to determine which isolated realm is used to forward the packets to the end user. The 
realm identity is contained in the source information contained in the packet header. 

It is respectfully submitted that the prior art made of record by the Examiner does not 
relate to multiple forwarding tables and a system where routing and forwarding are separate 
functions. 



Respectfully Submitted, 




GMM:sr 



George M. MacGregor 
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Multiple Internetworking Realms Within an Internetworking 
Device 

Technical Field 
5 This invention relates to the provision of 

internetworking and more particularly to a system and method 
wherein a common backbone infrastructure is shared by 
several distinct user networks. 
Background Art 

10 Multi-protocol over ATM (MPOA) represents an important 

development in the communications industry in that it 
permits the internetworking of local area networks (LANs) 
over an ATM backplane. This internetworking leads to the 
efficient delivery of a range of multimedia services such as 

15 video, voice, image and data. 

Heretofore, MPOA internetworking architectures have not 
been capable of servicing more than one user network. 
Current internetworking devices within the network 
architecture provide one or more functions related to 

20 forwarding data packets through a network. The primary keys 
used to control internetworking forwarding functions are 
network addresses. Within a particular network these 
network address keys must be unique for the correct 
operation of the forwarding functions. In many 

2 5 internetworking systems, in particular those based on the 
internet protocol, the correct operation of the forwarding 
functions requires the additional constraint that these 
network address keys be organized in an ordered hierarchy of 
partial address prefixes where the unique set of keys used 

30 to control the internetworking forwarding function at 

different points within the network are different. One 
such system is disclosed in EP-A-0797 331 published September 
24, 1997. The prior art relates to networks involving ATM 
workstations and switches connectable to multiple legacy LAN 



workstations. For example, in WO 96/04729 published February 
15, 1996, there is disclosed a system including one or more 
interconnected emulated networks to which legacy IAN 
workstations are connected. Traffic within an emulated 
5 network is switched while traffic between emulated networks is 
routed. In current systems, a router and bridge combination 
sometimes known as a ridge provides the address keys in order 
to forward the data packets to the proper destination. 
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wherein a coinmor. backbone infrastructure is shared by 
several distinct user networks. 
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Multi-protocol over ATM (MPOA) represents an important 
development in the communications industry in that it 
permits the internetworking of local area networks (LANs) 



been capable of servicing more than one user network. 
Current internetworking devices within the network 
architecture provide one or more functions related to 
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workstations. For example, in WO 96/04729 published February 
15, 1996, there is disclosed a system including.one or more 
interconnected emulated networks to which legacy LAN 
workstations are connected. Traffic within an emulated 
network is switched while traffic between emulated networks is 
routed. In current systems, a router and bridge combination 
sometimes known as a ridge provides the address keys in order 
to forward the data packets to the proper destination. 
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Disclosure of Invention 

The purpose of the present invention is to permit the 
sharing of physical devices that provide the internetworking 
functions while servicing two or more distinct and isolated 
user networks. This is accomplished by logically 
partitioning the devices into distinct sub-elements which 
provide all or part of a specific internetworking function 
including: physical interfaces; connectivity contexts; 
dynamic storage and context for routing calculations; 
storage and context for forwarding information; storage for 
queuing of packets being forwarded; and the necessary 
storage and context of secondary elements of the 
internetworking forwarding functions. The sub-elements of 
the device are then uniquely allocated to independent 
realms. These independent realms are assigned to specific 
user networks preserving the necessary uniqueness and any 
local differences in the primary address keys and all other 
secondary information used in the correct operation of the 
internetworking forwarding function. 

Therefore, in accordance with a basic aspect of the 
present invention there is provided in a system for 
delivering internetworking service functions utilizing 
internetworking devices a method of providing the services 
to two or more specific network users, the method 
comprising: logically partitioning the devices into sub- 
elements; allocating the sub-elements to independent realms; 
and assigning the independent realms to the specific network 
users . 

According to a second aspect of the invention there is 
provided a system for delivering internetworking services to 
two or more specific network users comprising: 
internetworking devices logically partitioned into sub- 
elements; independent realms including the logically 
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partitioned sub-elements; and assignment means to assign the 
independent realms to the specific network users. 

The present invention provides a distributed system 
built from collaborating internetworking devices and 
provides for large-scale internetworking services for 
carriers and service providers. This is known herein as 
carrier scale internetworking or CSI . The purpose of CSI is 
to meet the future needs of the large providers of 
internetworking (e.g., bridging and routing) services. To 
do so, CSI provides services with a number of key properties 
including : 

a) public and private internet services; 

b) private bridged services; 

c) customer isolation; 

d) customer-specific differentiated service for both 
configured and dynamically detected flows; 

e) reduction of relative complexity of management; 

f) modularity of functions, such that the CSI system works 
together as a whole, but functions can be replaced 
individually with constrained impact; 

g) explicit support for network engineering; 

h) coexistence with other services running on the underlying 
fabric ; 

i) a high number of customer connection points; 

j) independence from the number of simultaneous flows; 

k) high availability; and 

1) high stability, including routing. 

The following provides an overview of the CSI system 
framework. 

CSI is a system of components acting together to 
provide routing and forwarding. The functions, 
traditionally all treated as a unit and labeled "routing", 
can be separated beneficially. In particular, path 
discovery, topology management, and route computation can be 
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separated from packet classification, marking, and queue 
management. This is one of the fundamental principles of 
CSI . 

CSI thus includes components which work together to 
provide access, control, routing and forwarding, as shown in 
Figure 10. Inside a CSI system, this separation of 
functions enhances flexibility, scalability and 
manageability. Outside a CSI system, the CSI system appears 
to behave like one or more legacy routers. 

Together with reference to Figure 10, the following 
description of the CSI framework first discusses external 
interfaces between a CSI system and the rest of the world. 
It then describes each component of the framework and its 
functions in a CSI system, and lays out the interfaces and 
interactions between them. Here are some concepts which are 
not CSI specific but which are used in describing CSI. 

Flow: As used here, a flow is any set of packets which 
can be clearly distinguished from all the others passing 
through a forwarding entity, using simple rules., A flow 
could be, for example, all packets with a specific 
combination of source address, destination address, and 
port. It could also be all packets with a certain value in 
the IPv4 header TOS byte. 

Interface: An interface is between two entities, not 
simply the edge of one or the other of them. to interface 
implies connect ivity-if a fabric-level connection does not 
exist, an interface cannot be established. 

A CSI system' s external interfaces are known as access 
interfaces. They are provided at access terminations. By 
design, CSI can support any access interface which carries 
IP packets and/or bridged PDUs . These interfaces may be 
either physical or virtual {e.g. an ATM VCC) . 

Through access interfaces, CSI offers services. Two 
services defined in CSI are, for example: 
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1) Public Internet service, which is managed 
connectivity to the public internet. 

2) Virtual Private Network (VPN) service, which is 
managed connectivity to a virtual private network. A 
virtual private network may include both virtual LANs 
(bridged connectivity) and virtual subnets (network layer 
connectivity) . 

A realm is a specific instance of a Public Internet or 
VPN service. Resources (such as bandwidth and address 
space) and policy (such as routing, forwarding or CoS) are 
segregated between realms . An access interface may be one of 
three kinds: routed (IP only), VLAN, and VLAN over which 
routing exchanges may take place. 

A public internet realm supports only Layer 3 IP 
capabilities, although access interfaces will support Layer 
2 functions as necessary to do so (e.g. Frame Relay 
functions) . An access interface may have more than one IP 
address associated with it. 

The CSI framework does not impose any constraints that 
prevent a public internet realm from providing advanced 
internet forwarding features such as source-based 
forwarding, MPLS, or differentiated services. Services which 
are intermediate between the currently defined services are 
feasible . 

There may be multiple VLANs differentiated by a 
protocol family within a single VPN realm. Different PDUs 
from a single end station may be injected into different 
virtual LANs or virtual subnets. Within a VPN realm, VLANs 
are interconnected with routed interfaces. 

The foundation of a CSI system is an ATM network. On 
this ATM network, CSI coexists with other services which 
might be offered, such as circuit emulation. ATM itself is 
not strictly necessary. CSI could be run over other 
subnetwork layers and even multiple interworking subnetwork 
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layers. The minimal requirements are a high-speed 
environment in which: virtual connections are possible (the 
subnetwork details are hidden from the CSI components) ; 
virtual connections can be set up dynamically; and virtual 
5 connections may have quality of service differentiation 
sufficient to support the desired IP QoS differentiation. 

Network management is required as part of the CSI 
framework. Network management mechanisms exist 
independently of any interactions between CSI components, 
10 and CSI interactions do not restrict network management to 
specific mechanisms. There are a few areas where CSI 
expects network management to perform some function . 

A CSI configuration server is an agent of network 
management. A configuration server receives information 
15 from network management regarding which CSI components 

should communicate with others under which conditions. It 
then provides all other CSI components with the basic 
configuration information they need to communicate, and to 
establish bindings between interfaces, services and realms. 
2 0 Configuration servers provide configuration sendees to each 
component when it becomes operational, and may update that 
information at any time. 

The edge of a CSI system is an access termination. 
Access terminations provide access interfaces. Access 
25 terminations act as aggregation and distribution points, 

collecting traffic from access networks to distribute to one 
or more edge forwarders across service interfaces, and 
distributing traffic from one or more edge forwarders to one 
or more access networks. The distribution of traffic is 
30 controlled by network management. Access terminations may 
provide limited service differentiation through traffic 
prioritization between interfaces, under the control of 
network management. Access terminations do not do any 
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filtering or traffic shaping for incoming traffic except 
that required by layer 2 . 

Edge forwarders provide all functions related to 
forwarding in the CSI system. While access terminations will 
5 distinguish between traffic destined to different edge 

forwarders, edge forwarders are responsible for more complex 
service differentiation, interworking of CSI and other 
mechanisms for providing VPN support, and also for some 
manipulation of packets. Where the control plane of an 
10 external protocol family includes authentication, for 
example with PPP, the edge forwarder will perform 
preliminary authentication of users, since this may affect 
the distribution of traffic. Edge forwarders represent the 
CSI system at the internet level, for example by responding 
15 to IP-based echo requests. Edge forwarders alsc provide all 
other functions associated with higher layer protocols, such 
as support for proxy ARP and inverse ARP, and may act as a 
proxy for some services such as DHCP. They may make use of 
other resources, such as CSI routing services, to perform 
20 these functions. 

Edge forwarders are responsible for forwarding, but not 
for routing. For routing they depend on routing services. 
Edge forwarders classify packets according to realm and 
quality of service, mark and manipulate packets, and provide 
25 differential policing and scheduling for flows, all 

according to instructions from routing services. The 
complexity of the information and instructions which edge 
forwarders receive from routing services is not limited by 
the framework, cuu.1 Ijl ^s^^t^*He# liUI'L' . 
3 0 Edge forwarders may also detect flows and, with the 

help of routing services, create "shortcut" VCCs to other 
forwarders when appropriate. 

For ease of discussion edge forwarders may be 
characterized as transit or non-transit. A transit 
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forwarder has more than one transport interface to other 
forwarders within its CSI system, and is able to forward 
traffic between them. A non-transit forwarder may or may 
not have more than one transport interface to other CSI 
5 forwarders, but in any case it is not able to forward 
between them— only between CSI transport interfaces and 
service interfaces. 

The two functions of access termination and edge 
forwarder may be considered as a unit, collectively known as 

10 a service point. In some implementations the two functions 
may be tightly coupled. Even if they are combined, they are 
logically distinct. If they are separate, there is no reason 
why an access termination might not establish relationships 
with physically distant edge forwarders. 

15 A core forwarder is a low overhead, possibly high 

speed, internet -layer forwarding device in the core of the 
CSI network. Core forwarders are not necessary to the 
functioning of a CSI system, and are provided to support 
scalability (by making it possible to reduce the number of 

2 0 VCCs between edge forwarders and by offering a forwarding 
path for forwarders which cannot hold full forwarding 
databases) . A core forwarder has no service interfaces and 
runs no routing protocols. It receives instructions from 
routing services and provides transport within a single 

25 realm. By definition, core forwarders are transit 

forwarders. As much as possible, special capabilities are 
implemented in other forwarders, thus allowing the core 
forwarder to support high speed and high capacity without 
high overhead. Although some end-to-end features require 

30 support in all forwarders (e.g. QoS differentiation), in the 
core forwarder speed and capacity are far more important 
than feature richness. If an approach allows one to support 
a particular feature in CSI without adding complexity to 
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core forwarders, that approach should be given serious 
consideration . 

Realms may require detailed per- flow forwarding policy. 
In realms which are smaller in scale it is both possible and 
attractive not to give edge forwarders pre-loaded complete 
forwarding information for all the situations they may be 
required to deal with, and instead to have them ask for that 
information as needed and cache it. Rather than drop 
packets while they are retrieving this information, edge 
forwarders may forward them to the default forwarder. The 
default forwarder is more sophisticated than a core 
forwarder, in that it must take policy information into 
account when deciding how to forward. However, like a core 
forwarder it is a transit forwarder which runs no routing 
protocols and has no service interfaces. 

For robustness the default forwarder function must have 
intimate knowledge of routing services policy. There is no 
protocol or interface defined for this visibility, and its 
acquisition is not covered in this framework. 

In CSI the functions of routing are explicitly 
separated from the functions of forwarding. Routing 
services are responsible for routing, while forwarders are 
responsible for forwarding. 

Routing services are provided by routing services 
control points (RSCPs) . RSCPs present one or more routing 
services instances (RSIs) . RSIs are the means by which 
routing services communicate with a particular realm. RSIs 
are not in any user data path, and are not responsible for 
forwarding any user data. CSI forwarders establish 
associations with one or more RSIs on one or more RSCPs. 

RSIs are responsible for all exchanges of routing 
information with peers both inside and outside a CSI realm. 
RSIs take in routing information from other routing 
entities, other RSIs, and from forwarders (regarding 
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connectivity to other forwarders and external entities) . 
They calculate routing information for each forwarder for 
which they are responsible and distribute the results to the 
forwarders. They also distribute related configuration 
information such as interface bindings. Route distribution 
may be done in advance or on demand. A realm may have more 
than one RSI operating in it for scaling purposes. 

For ease of discussion an RSI and its client forwarders 
are collectively referred to as a logical router (LR) . In a 
logical router, the RSI represents the logical router in 
routing protocol exchanges, and the combination of the RSI 
and the forwarders appears in routing protocols as a single 
routing node. A forwarder may be a client of different RSIs 
for different realms, and thus may participate in multiple 
5 LRs. An RSI participates in only one LR. The minimum LR is 
an RSI and a (non- transit ) edge forwarder. 

Components which interact closely with routing 
services, i.e. the CONS and the default forwarder, may be 
bundled with routing services in an implementation, just as 
0 edge forwarders and access terminations may be combined. 
Logically they are best considered as separate regardless. 

Next is described the communications interfaces used by 
CSI components, followed by descriptions of protocol 
interactions which use these interfaces. 
5 There are five types of internal interface: 

1) Management interfaces carry interactions between 
network management and CSI components. Management 
mechanisms are not discussed further here except to the 
extent that they are related to other CSI interactions. 
iO 2) Configuration interfaces carry configuration 

information between configuration services and other CSI 
components except access terminations. Configuration 
services do not interact with access terminations— if 
forwarder components are separate from the edge access 
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terminations, the access termination configuration is done 
through network management . 

3) Control interfaces carry control information between 
an RSI and the forwarders associated with it. From the RSI 
they carry information regarding service interfaces such as 
IP addresses and forwarding policies to apply. From 
forwarders to RSIs they carry information on connectivity 
between forwarders and also between forwarders and external 
entities . 

4) Service interfaces carry user traffic between access 
terminations and edge forwarders in cases where the two 
functions are separated. An access termination may map 
multiple access interfaces to a single service interface. 

5) Transport interfaces carry user information between 
forwarders. Traffic with different QoS requirements may be 
carried in different VCCs . Within a single realm and a 
single QoS, multipoint -to-point VCCs may be used to reduce 
the number of VCCs a forwarder must support. 

An interface implies connectivity, i.e. an interface 
exists only if a fabric-level connection between two CSI 
components exists. 

Except for management interfaces, all interfaces are 
based on ATM VCCs. Within a VCC, AAL5 is used, and all 
packets are encapsulated using the LLC part of RFC 1483 for 
ATM. QoS parameters depend on the specific use of the VCC. 
•Signaling requires explicit QoS parameter signaling in 
addition to UNI 3.1 semantics. 

For configuration, control, and transport interfaces, 
SVCs are used, for robustness and manageability. B-HLI 
information elements are used to carry SVC attributes such 
as its purpose (e.g. management) . Control interface SVCs 
are "persistent", i.e. if SVC connectivity is lost the CSI 
components will reestablish the SVC immediately. Transport 
interfaces which are created based on preconf igured 
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information from the RSI are persistent, while transport 
SVCs which are created due to flow detection are not 
expected to be persistent, and are released if inactive. 

Either side of an interface may attempt to establish 
the underlying connection if needed. Duplicate connections 
are dealt with through simple conventions. In cases where 
an interface relationship is asymmetric, it is up to the 
client component to establish the association. Where it is 
symmetric, both components try to establish the association. 
If an SVC cannot be created for some reason, an algorithm of 
increasing backoff and retry may be used. 
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Interfaces between CSI Components. X: configuration. S: service:. P: persistent 
transport. D: dynamic transport. C: control. 



The above table shows the possible interfaces between 
components. "Persistent transport" refers to transport SVCs 
which are established at startup and are maintained. 
"Dynamic transport" refers to transport SVCs which are 
established when a forwarder believes them to be 
appropriate, and which are taken down when they are idle. 

Having regard to configuration interactions, all CSI 
devices are given an ATM anycast address which they can use 
to discover an appropriate configuration server (CONS) . When 
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a CSI component is first initialized, it registers with a 
CONS as its client. The CONS keeps state information for 
each of its clients, and will update them upon any 
configuration changes they need to be aware of for their 
proper functioning. Since ATM anycast addresses are used to 
establish persistent SVCs, in the case of SVC failure it is 
possible that the new connection will be established with a 
different CONS. 

At initialization, each individual RSCP registers with 
a CONS, and in the ensuing dialog receives information it 
needs for its operation. This information includes the RSIs 
to be running on the RSCP, the CSI realms for which the RSIs 
are responsible, any RSCP redundancy information, and the 
control interfaces which it should establish with other RSIs 
and external entities. It also includes detailed information 
which the RSI will need to manage the forwarders which 
register with it. 

An edge forwarder registers with a CONS in the usual 
way and is given a list of RSCPs supporting the RSIs it 
should register with, along with the QoS parameters to use 
when contacting the RSIs. 

The CONS also has RSCPs as clients. If it detects 
addition, deletion, and failure of relevant RSCPs, it will 
notify the edge forwarder of the changes. If an edge 
forwarder is unable to maintain an interface with a 
particular RSI, it will notify the CONS. 

Core forwarder configuration is very much like that of 
an edge forwarder, except that a core forwarder does not 
require information specific to access interfaces (such as 
PPP authorization information) . 

Default forwarders rely on close association with an 
RSI for their information. 

As for control interactions, after a forwarder has 
received information from configuration services, it will 
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establish an association with each of its RSIs, and register 
with each as a client. 

An edge forwarder then learns the realms being served 
by each RSI and detailed information about the external 
interfaces it is to support for each realm, such as 
subnet /VLAN configuration. 

The RSIs use routing information from internal and 
external peers, information received from forwarders about 
links to other forwarders (in public internet realms) , and 
policy information from network management, to compute 
forwarding rules for each forwarder in the CSI system for 
which they are responsible. They then provide this 
forwarding information to the forwarders as required. 

RSIs provide forwarders with information on packet . 
classification and filtering, packet forwarding, and queuing 
treatments to be applied to different classes of packets, at 
both the IP and subnetwork levels. These rules may depend 
on a wide range of criteria at multiple layers. 

The information transmitted to a forwarder may include 
instructions regarding persistent links which the forwarder 
shall establish with other forwarders. As a forwarder 
establishes and loses such links with other forwarders, it 
keeps its RSIs notified of the changes. RSIs are not 
notified of temporary shortcuts established due to flow 
detection. 

RSIs may also transmit other instructions to 
forwarders— for example RSIs may send an IP packet to a 
forwarder, encapsulated, with instructions to forward that 
packet out a particular interface. 

RSIs are also responsible for computing multicast 
forwarding rules for the forwarders. Multicast within 
bridged realms is managed following the usual mechanisms for 
VLANs . Multicast join and leave requests which are received 
from outside the CSI system are propagated from the 
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forwarders to the RSIs, which then distribute the 
appropriate forwarding rules in response. 

If a forwarder loses its control interface with an RSI, 
and is not able to reestablish it within a short time, it 
should flush any information it obtained from that RSI and 
report the loss to configuration services. 

The differences in what an edge forwarder receives from 
an RSI and what other forwarders receive from an RSI is 
similar to the differences in what forwarders receive from 
configuration services . Core forwarders need information on 
interfaces to establish with other forwarders, but do not 
need external interface information. Core forwarders report 
connectivity just as edge forwarders do. Default forwarders 
need highly detailed policy information. 

RSIs communicate with each other for several control 
purposes, depending on the relationship between the RSCPs . 

Between RSIs and routing entities outside of the RSIs' 
realms, RSIs use either internal or external routing 
protocols to exchange routing information, and NHRP to 
support the creation of shortcut transport connections. 
This communication is mediated by edge forwarders. 

Within a public internet realm, they use 1BGP4 and 
NHRP, and an IGP . An iBGP attribute may be used to 
distribute the IP address of the egress edge forwarder for 
external destinations. They also use a realm topology 
management protocol to communicate realm topology 
information received from forwarders. NHRP between RSIs 
includes support for IP QoS . 

Within a VPN realm, they communicate using an IGP and 

NHRP. 

With respect to service interactions, an access 
termination examines incoming traffic and redistributes it 
to one or more edge forwarders in one or more VCCs . An 
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access termination interacts only with network management 
and with edge forwarders . 

In general a service interface will carry traffic for 
only one realm. However, there may be higher layers 
involved in VPN multiplexing, for example IP encapsulation 
or MPLS . In those cases the edge forwarder will need to 
demultiplex the VPN traffic. 

Lastly, regarding transport interactions, edge 
forwarders establish connections with other forwarders for 
two reasons. First, if instructed to do so, and second, if 
a flow is detected and the edge forwarder considers a direct 
"shortcut" connection to be appropriate. Based on forwarding 
policies received from RSIs, edge forwarders forward IP 
packets as required on their transport and service 
interfaces. The forwarding function includes IP control 
functions such as generation of ICMP messages for external 
peers, and source verification. 

Default forwarders forward packets based on their 
intimate knowledge of RSI policy. Since a particular 
traffic flow through a default forwarder can be expected to 
be temporary, lasting only until the source forwarder 
establishes a direct transport connection, default 
forwarders never attempt to form shortcut connections. 

Core forwarders establish connections and forward 
packets per RSI instructions. Core forwarders would rarely, 
if ever, be the target of an on-demand connection. In a CSI 
system where core forwarders were deployed, the scale of the 
traffic would likely be such that connections to core 
forwarders would be preconf igured . 
Brief description of the Drawings 

The invention will be better understood from the 
following embodiment description of a carrier scale 
internetworking (CSI) system together with reference to the 
accompanying drawings, in which: 

16 
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Figure 1 is a service view of a CSI system; 
Figure 2 is a combined service-architectural view of a 
CSI system; 

Figure 3 illustrates control and data traffic for 
5 Internet service; 

Figure 4 illustrates control and data traffic for a 
virtual private network (VPN) ; 

Figure 5 shows one implementation of a Packet 
Internetworking Processing Engine (PIPE) also known as an 
10 Internetworking Service Card (ISC) on a multi-services 
switch such as a Newbridge 36170; 

Figure 6 illustrates a CSI management model; 
Figure 7 is a diagram of traffic and control flow to 
and from a PIPE; 
15 Figure 8 illustrates a simplified CSI system; 

Figure 9 shows a network layer forwarding mechanism; 

and 

Figure 10 illustrates various components which in 
combination constitute a CSI system framework. 
2 0 Best Mode For Carrying Out the In vention 

The CSI system description herein makes use of a number 
of well known and new terms, descriptions of which follow 
for easy reference. Reference may also be made to Figures 
1, 2 and 3 for further information on how these terms are 
25 related to a CSI system. 

Access Interface (AI) : An external interface on a CSI 
system, virtual or physical. See also Management Interface, 
Configuration Interface, Control Interface, Service 
Interface and Transport Interface. 
3 0 Access Termination (AT) : A CSI component which 

provides external access interfaces. 

ATM Adaptation Layer 5 (AAL-5) : Used for carrying 
information over ATM. 
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Anycast Address: A special address used to initiate 
communications between an end system and any one of a group 
of others. 

Address Resolution Protocol (ARP) : A lower-layer 
5 mechanism by which a higher layer address can be resolved. 

Autonomous System (AS) : A collection of network 
equipment and networks that operate under a common BGP 
policy. 

Border Gateway Protocol (BGP) : An IETF standard 
10 exterior gateway protocol used to propagate routing 

information between autonomous systems and between border 
routers across an autonomous system. 

Carrier Scale Internetworking (CSI) : A solution 
framework for carrying packet -based traffic in a highly 
15 flexible, scaleable, and manageable way. 

Configuration Interface: An interface between a CSI 
routing or forwarding component and a CSI configuration 
server . 

Configuration Server (CONS) : A CSI component which 
20 provides configuration services to routing and forwarding 
components, especially the bindings between them. 

Control Interface: An interface between a CSI routing 
component and a forwarding component. 

Core Forwarder (CF) : A CSI forwarding component which 
2 5 has no access or service interfaces. 

Default Forwarder (DF) : A CSI component responsible 
for making a forwarding decision when an edge forwarder in a 
private CSI realm has no specific forwarding entry for a 
particular packet. 
30 Dynamic Host Discovery Protocol (DHCP) : See RFC 2131, 

Droms, R . , "Dynamic Host Configuration Protocol", March 
1997 . 
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Edge Forwarder (EF) : A CSI forwarding component which 
has service interfaces, by which traffic from outside a CSI 
system may enter the system. 

Border Gateway Protocol-External (eBGP) : The portion 
5 of BGP that propagates routing information between 
autonomous systems 

Border Gateway Protocol-Internal (iBGP) : The portion 
of BGP that propagates routing information within an 
au t onomous sy s t em . 
10 Interior Gateway Protocol (IGP) : See RFC1812, Baker, 

Fred, "Requirements for IP Version 4 Routers", June 1995. 

Logical Router (LR) : An RSI and its client forwarders, 
taken as a functional unit. 

Logical Link Control (LLC) : A protocol layer directly 
15 above the MAC layer that is responsible for providing 

logical interfaces between two adjacent layers. See IEEE 
802 . 2 . 

Media Access Control (MAC) : A sublayer of the data 
link layer defined in IEEE 802.2. 
2 0 Management Interface: An interface between a CSI 

component and network management . 

Next Hop Resolution Protocol (NHRP) : An IETF protocol 
for finding shortcuts across non-broadcast multiple access 
networks . 

25 Non-transit Forwarder: A CSI forwarder which is not 

capable of forwarding traffic between two transport 
interfaces. See also Transit Forwarder. 

Open Shortest Path First (OSPF) : An IETF standard 
link-state interior gateway protocol. See RFC 2178 and 
30 draft-ietf-ospf-vers2-03.txt. 

Protocol Data Unit (PDU) : A unit of transmission. In 
CSI, either an IP packet or an IEEE 802 frame. 
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Point -to -Point Protocol (PPP) : An IETF standard for 
encapsulation and negotiation over synchronous and 
asynchronous point-to-point connections. 

Permanent Virtual Circuit (PVC) : A virtual circuit 
that is established through configuration. 

Quality of Service (QoS) : A description of a distinct 
service which may be provided to specific traffic. 

Realm: A specific instance of a CSI Service. 

Routing Services: The set of functions which provide 
path discovery, route computation and topology management 
within the CSI system. 

Routing Service Instance (RSI) : An individual instance 
of routing services. The representation of routing services 
with which forwarders and other routing entities establish 
associations . 

Routing Services Control Point (RSCP) : A CSI component 
which provides routing services. 

Service : A suite of protocols supported across one or 
more CSI access interfaces, together with a coherent set of 
rules for processing the results of those protocols and user 
data received and transmitted across those interfaces. 

Service Interface (SI) : An interface between a CSI 
edge forwarder and a CSI access termination. 

Service Point: A CSI device providing at least edge 
5 forwarder functions, and perhaps other functions as well. 

Switched Virtual Circuit (SVC) : A virtual circuit that 
is established through signaling. 

Transport Interface: An interface between two CSI 
forwarding components over which user traffic is carried. 
0 Virtual Circuit (VC) : A communications channel that 

provides for the sequential transport of ATM cells. 

Virtual Channel Connection (VCC) : A virtual connection 
that has end-to-end significance and is a concatenation of 



WO 99/18751 



PCT/CA98/00937 



the virtual channel links that extends between the points 
where the ATM service users access the ATM layer. 

Virtual Private Network (VPN) : An intranet network 
that connects multiple corporate sites through multiple 
service interfaces. 

Figures 1, 2 and 10 provide high level service and 
architectural views respectively of a CSI system according 
to the present invention. Figure 1 shows the concept of 
multiple, individual realms for Public Internet and virtual 
private network (VPN) services within a CSI network. Figure 
2 illustrates at a high level the internetworking devices 
that are logically partitioned into sub-elements and 
assigned to individual realms. In Figure 2 bridged and/or 
routed VPN and Internet services are provided to specific 
network users through separate realms . 

As discussed previously, CSI is a distributed system 
built from collaborating ATM switches, route servers, access 
terminations, edge forwarders, default forwarders, core 
forwarders, a management system, and auxiliary servers. As 
a whole, the CSI system provides internetworking services at 
both the packet and frame levels. The CSI architecture 
defines the external interfaces between the CSI system and 
the outside world and the internal interfaces between CSI 
components. It is expected that a CSI system will be 
managed as a whole, by or on behalf of a single service 
provider . 

External interfaces are classified as either access 
interfaces or service interfaces. 

Access interfaces are the interfaces over which one or 
more service interfaces are provided between the customer 
and the CSI system (e.g. STM1 UNI or lOBaseT) . Access 
interfaces interconnect the CSI system and customer access 
networks, which can be any of various technologies, from a 
PSTN modem to a campus LAN. The concept of the access 
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interface includes all aspects of the interface which are 
specific to the particular physical type of the interface as 
well as any interface-specific transmission protocol issues. 
Access interfaces are provided by CSI components known 
5 as Access Terminations. Packets transmitted towards (and 
received from) the access network are encapsulated (and de- 
capsulated) by the access termination components. The 
access termination devices provide all the control and 
auxiliary functions required by the access interfaces and 

10 transmission across them, e.g. switched-access signaling and 
Frame Relay local management interface (LMI) . Access 
interface does not refer to a physical interface of the 
access termination, but rather to a set of functions 
performed by the access termination. Conceptually the 

15 access interface is internal to the access termination. 

Service interfaces are logical interfaces through which 
services are provided to the customers . A service interface 
is expected to carry traffic for one customer, although a 
customer may encompass many end systems . The control and 

2 0 user data flows for each service are those appropriate to 
the service. 

Service interfaces are provided by Edge Forwarders. 
Edge forwarders exchange encapsulated, interface -independent 
Protocol Data Units (PDUs) with the access terminations, and 

2 5 provide all control and auxiliary functions required by 

higher layer encapsulations and control protocols such as 
point to point protocol (PPP) . 

A service is coordinated communication between an 
access termination and a specific customer across a service 

3 0 interface, using sets of supported protocols and the 

management of control and user information according to 
those protocols. Two instances of services available in CSI 
are : 

1) Public Internet access service, which is managed 
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connectivity to the public Internet; and 

2) Virtual private network (VPN) service, which is 
managed connectivity to a virtual private network. A 
virtual private network may include both virtual local area 
5 networks (LANs) (bridged connectivity) and virtual subnets 
(network layer connectivity) . 

A realm is a specific instance of an internet or VPN 
service. Within a VPN realm, there may be multiple virtual 
LANs each for a different protocol family. A single service 
10 interface may support multiple virtual subnet services 
(within a VPN realm) . Different PDUs from a single end 
station may be injected into different virtual LANs or 
virtual subnets . 

An access interface may support more than one service 
15 interface simultaneously, but a service interface may 

support only one service at a time, and a service may be 
provided for only one realm at a time. The particular 
service and realm available on a particular service 
interface shall be controlled by configured policy, 
20 authentication and authorization. 

Mechanisms for providing services and distinguishing 
realms are discussed later. 

One or more route servers may communicate with other 
routing entities outside of the CSI system, for the exchange 
25 of internet routing information. From the point of view of 
routing, the route servers represent the CSI system to the 
outside world. This communication takes place at the 
internet layer, across an access termination or an edge 
forwarder. 

30 The foundation of a CSI system is an ATM network. On 

this ATM network, CSI coexists with other services that 
might be offered, such as circuit emulation. In practice, a 
single ATM network may serve as all of: access network; 
distribution fabric; and transport fabric. The role of the 
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ATM network is to provide high-speed, complete connectivity 
between components of a CSI system. All interfaces between 
the fabric and the components of a CSI system preferably are 
ATM UNI (User Network Interface) interfaces. 

In the CSI system, all packets within a flow of either 
control or user data are encapsulated using LLC (Logical 
Link Control) encapsulation. This permits, but does not 
require, multiple flows to be carried over a single virtual 
channel connection (VCC) . Control and user data flows 
cannot be carried in the same VCC. 

The management system provides all other CSI components 
with the basic configuration information they need to 
communicate and to establish bindings between interfaces, 
services and realms. Configuration information is given to 
each component when it becomes operational, and may also be 
updated at any time. 

Access Terminations provide access interfaces. On the 
access network side they terminate data and control planes. 
On the CSI side of the network they provide a uniform 
connection mechanism and traffic stream to edge forwarders. 
Access terminations act as aggregation and distribution 
points, collecting traffic from access networks to 
distribute to one or more edge forwarders, and distributing 
traffic from one or more edge forwarders to one or more 
access networks. The distribution of traffic is controlled 
by configuration information. 

The primary motivation for separating the access 
termination functions from the edge forwarding functions is 
to enable the access resale capability. 

Access terminations provide limited service 
differentiation through traffic prioritization between 
interfaces. This is done under the control of the 
management system. Access terminations do not do any 
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filtering or traffic shaping for incoming (i.e. from the 
access network) traffic. 

Edge forwarders terminate service interfaces and 
provide all functions related to forwarding in the CSI 
5 system, for both packets and frames. Edge forwarders are 
potentially the most sophisticated components in a CSI 
system. 

While access terminations may distinguish between 
traffic destined to different edge forwarders, edge 

10 forwarders are responsible for more sophisticated service 
differentiation. 

Edge forwarders receive encapsulated PDUs from access 
terminations and other forwarders, examine them according to 
rules given by the management system, categorize them, 

15 manipulate them as necessary, and forward them using rules 

appropriate for the realm in which the PDUs are placed. The 
processing rules may lead to forwarding of either bridged 
frames or routed packets, in private or public nets, on a 
per-PDU basis. 

2 0 Where the control plane of a service interface includes 

authentication, for example with PPP, the edge forwarder 
will perform preliminary authentication of users, since this 
may affect the distribution of traffic. Edge forwarders 
also provide all other functions ancillary to higher layer 

25 protocols, such as support for proxy ARP (Address Resolution 
Protocol) and inverse ARP , and may act as a proxy for some 
services such as DHCP (Dynamic Host Configuration Protocol) . 
They may make use of other resources, such as route servers, 
to perform these functions. Edge forwarders represent the 

30 CSI system at the internet level, for example by responding 
to IP-based echo requests. 

Edge forwarders inform route servers of all changes in 
topology concerning links to access terminations and 
configured links to other forwarders. Edge forwarders 

25 
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differentiate between flows and provide differential queuing 
services for flows where configured. Edge forwarders may 
also detect flows and create "shortcut" VCCs to other 
forwarders where appropriate, when allowed by configuration. 
5 A core forwarder is a low overhead, low functionality, 

possibly high speed internet -level forwarding device in the 
core of the CSI network, for use only by public internet 
services . Core forwarders are not necessary to the 
functioning of a CSI system, and are provided to support 

10 scalability (by making it possible to reduce the number of 
VCCs between edge forwarders and by offering a default 
forwarding path for forwarders which cannot hold full 
forwarding databases) . A core forwarder has no direct 
service interfaces and runs no routing protocols. Special 

15 features, where necessary, should be implemented in the edge 
forwarders and access terminations, thus allowing the core 
forwarder to support high speed and high capacity without 
high overhead. Although some end-to-end features (e.g. in 
Resource Reservation Protocol {RSVP} and Integrated 

2 0 Services) require support in all forwarders, in the core 

forwarder speed and capacity are far more important than 
feature richness . 

A default forwarder is essentially a more intelligent 
core forwarder, used in support of private realms. In 
25 private realms, edge forwarders may not have complete 

forwarding information. Rather than drop packets/ frames 
while they are .retrieving this information {from route 
servers) they forward them to the default forwarder. The 
default forwarder is more sophisticated than a core 

3 0 forwarder, in that it must take VPN policy information into 

account when deciding how to forward. 

In the cases of both packets and frames, route servers 
are responsible for routing, while forwarders are 
responsible for forwarding. The functions of routing are 
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explicitly separated from the functions of forwarding, in 
order to make it possible for individual components to do 
each more efficiently. Route servers are not in any user 
data path, and are not responsible for forwarding any user 
data . 

Route servers are responsible for: 
providing forwarders with service-related configuration 
information and interface bindings, and updating this 
information as necessary; 

exchanging routing information with internal and external 
routing agents; 

gathering information internally to keep track of internal 
topology; 

computing forwarding databases as needed from the above 
information and from configured policy; 
disseminating these databases to the edge and core 
forwarders (full tables in the public internet case; 
partial, full, or on-demand for private services); and 
answering queries in support of other functions the 
forwarders may perform such as ARP . 

Auxiliary servers provide support for services which 
run at a higher layer but are considered fundamental to 
normal network use. Such services are beyond the scope of 
the CSI architecture, but support for their functioning 
across the CSI system is not. In some cases, the auxiliary 
server may not be directly associated with the CSI system, 
or even if it is part of the system, it may not. be user- 
visible. This category does not include "content" servers 
such as NetNews, web servers, electronic mail, or user 
directory Services. 

Interfaces between CSI components support both control 
and user information. Interfaces occur over either 
"persistent" or "non-persistent" ATM SVCs . Persistent SVCs 
(SVC-Switched Virtual Circuit) are established per 
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configuration, are maintained regardless of inactivity, and 
are re-established in the case of failure. Non-persistent 
SVCs are established only as needed and are released on 
inactivity. The particular definition of "inactivity" is a 
5 matter for local policy, and may be part of the information 
obtained from the management system. 

A flow of either control or user information is carried 
in a single VCC . Multiple flows may be carried in a single 
VCC, but control flows are separate from user information 

10 flows. All configured control flows within the CSI system 
take place over persistent SVCs. User data flows used to 
provide default connect ivity- -that is, flows established 
based on configuration information and not on observed 
behavior of traffic or other criteria- -are also carried over 

15 persistent SVCs. All other flows are carried over non- 
persistent SVCs . 

In all cases, when a VCC is set up, ATM signaling is 
used to indicate the particular realm the VCC is being set 
up for. ATM signaling may also be used to indicate that a 

20 VCC is to be used for multiple realms, using B-LLI, B-HLI, 
and/ or L2TP . 

Each component has, as part of its basic configuration, 
one or more anycast ATM addresses for contacting the 
management system. The first connection a component 

25 establishes is with the management system over a persistent 
SVC. In the usual case, the management system then gives 
the component the information it needs to establish other 
default connections, and to know how to use them. These 
"default forwarding" connections are then established and 

3 0 maintained. 

Specifics of internal interfaces follow. Every 
component maintains a persistent connection to the 
management system. In the usual case, the management system 
then passes configuration information to the component which 
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the component needs in its specific situation. This policy 
information may include Access interfaces and service 
interfaces to be enabled and ATM addresses and other 
necessary information for establishing connections with 
other components. Other components may include edge 
forwarders, core forwarders (for all but access 
terminations) , access terminations (for edge forwarders) , 
and default forwarders and route servers (for all but access 
terminations) . 

Access terminations are given rules to use in 
determining how incoming traffic should be processed and 
forwarded. However, such information is not given to 
forwarders for their service interfaces- -they obtain that 
information from their route servers. 

The management system may update a component ' s 
configuration information at any time using the interface 
provided by the persistent VCC. 

Components may have information configured statically. 
Although they must connect to the management system, there 
is no requirement that they receive their policy information 
from the management system. CSI system managers may trade 
off the ease of central configuration management for the 
sake of simplicity and robustness. Hybrid schemes are 
possible where management information is statically 
configured into a component, but can be overridden by 
dynamically downloaded information. 

An access termination examines incoming traffic and 
redistributes it to one or more edge forwarders in one or 
more VCCs, according to configured policy. An access 
termination interacts only with the management system and 
with one or more edge forwarders . 

An access termination may bypass nearby edge forwarders 
and use VCCs to remote edge forwarders. This practice is 
known as access resale, and allows the CSI system operator 
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to deliver traffic transparently from an access termination 
in one location to an edge forwarder in another location, 
for example to an interface to an Internet service provider. 

In large-scale environments, in order to reduce the 
number of VCs from access terminations to edge forwarders, 
access terminations should support Layer 2 Tunneling 
Protocol (L2TP) directly over ATM Adaptation Layer 5 (AAL5) 
or some other scaling mechanism. Flows with different 
service requirements will be carried in different L2TP 
tunnels . 

There is no direct communication between Access 
Terminations. All traffic from an access termination which 
flows into the CSI system must flow to an edge forwarder. 

A particular implementation of an access termination 
may allow traffic to make "hairpin turns," entering on one 
service interface and exiting immediately on another. Such 
implementations must take policy configuration into 
consideration. Configured policy may affect such traffic in 
two ways: first, with regard to the legality of the traffic 
flow, and second, differentiation of service. 

Edge and core forwarders are responsible for 
establishing persistent connections to those route servers 
dictated by their configuration. 

Route servers provide forwarders with configuration 
information related to service interfaces, including 
bindings between service interfaces and particular realms. 
Route servers obtain reachability information from two 
sources: external routing entities (in peer networks and 
customer networks) and from edge and core forwarders. The 
route servers obtain external reachability information 
through the use of standard routing protocols (Border 
Gateway Protocol version 4 (BGP-4) for external providers ; 
Routing Information Protocol version 2 (RIPv2) , Open 



WO 99/18751 



PCT/CA98/00937 



Shortest Path First version 2 (0SPFv2) or BGP-4 for customer 
networks) . 

Edge forwarders send internal connectivity information 
(including information they obtain from access terminations) 
5 to the route servers using OSPFv2 . Only topological 

connectivity information is sent, not information about 
reachable destinations. Also, ad hoc shortcut VCCs are not 
advertised. Finally access terminations do not appear in 
this topological information. 

10 The route servers use the routing information from 

external sources, topology information from the forwarders, 
and policy information from the management system, to 
compute forwarding rules for each forwarder in the CSI 
system for which they are responsible. They then download 

15 this forwarding information to the forwarders. As a given 
forwarder may participate in multiple realms, forwarding 
information includes at least incoming service interface, 
PDU characteristics such as source and destination 
addresses, output service interface and output queuing 

2 0 regime. 

Route servers are also responsible for computing 
multicast forwarding rules for the forwarders, for use 
within and between realms. Multicast within bridged realms 
is managed following the usual mechanisms for VLANs . Since 
25 unicast forwarding rules may already include information 
such as incoming interface and source address, no new 
protocol features are required to support distribution of 
multicast forwarding information to the forwarders. 
Multicast join and leave requests are sent from the 

3 0 forwarders to the route servers, which then distribute the 

appropriate forwarding rules in response. 

Finally, edge forwarders may query route servers to 
resolve from Media Access Control (MAC) or internetworking 
addresses to ATM addresses in the case of VPN traffic (both 



WO 99/18751 PCT/CA98/00937 

bridged and routed) . Route servers establish connections to 
other route servers according to configuration. Route 
servers use internal Border Gateway Protocol version 4 
(iBGP4) to communicate external reachability information to 
each other. The BGP Next -Hop attribute is used to 
distribute the ATM address of the appropriate Edge Forwarder 
for external routes. This is required because the route 
servers may be physically separate from the forwarders. 

Route servers use 0SPFv2 to communicate internal 
topology information among themselves. Only information 
about configured connections is distributed between route 
servers. Information about dynamic, "shortcut" connections 
is never propagated. Route Servers may propagate Next Hop 
Resolution Protocol (NHRP) and MAC-layer address resolution 

i queries to the next Route Server along the "default" path to 
the destination within that particular realm. 

Given the forwarding tables delivered from the route 
servers, the edge and core forwarders forward IP packets as 
required by "Router Requirements"; this includes generating 

3 Internet Control Message Protocol (ICMP) messages as 
required. The Forwarders also respond to ICMP Echo 
Messages. Further, for packets received from a customer 
network, the Edge Forwarders may verify that the source 
address is valid for the network from which the packet was 

5 received. 

Edge forwarders establish connections with each other 
for two reasons. First, if configured to do so for a 
particular realm, and second, if a flow is detected and the 
edge forwarder considers a direct "shortcut" connection to 
0 be appropriate. In the case of a configured connection, 
either edge forwarder may attempt to open the connection. 

Edge forwarders communicate with each other using 
protocols appropriate to the type of realm being supported. 
All packets or frames are encapsulated as required by the 



fabric. Data transferred as part of a routed realm are 
transferred as encapsulated internetworking level packets 
while data transferred as part of a bridged service are 
transferred as MAC frames. 

5 Shortcut connections are direct SVC connections between 

two Edge Forwarders, for flows which are high- volume or 
require specified Quality of Service (QoS) or other 
segregated handling. Shortcuts are established by the edge 
forwarders as a result of flow detection policies or 

10 administrative control. The decision of when a flow has 
been detected for which a shortcut connection is useful is 
an implementation issue. 

Core forwarders forward between each other as dictated 
by configuration and by downloaded forwarding databases. 

15 Core forwarders do not exchange routing information, do not 
detect flows, and do not create dynamic "shortcut" SVCs . 

In the Example shown in Figure 3, the following 
interfaces and protocols are required to support public 
Internet services: 

2 0 Both Route Server Control Point <RSCP_1) and RSCP_2 support 

Internet routing { eBGP ; iBGP and OSPF) . NHRP is run on both 
RSCP_1 and RSCP_2 (server- server) to support EF-to-EF 
shortcuts as described below. 

Both EF_1 and EF_2 support service interfaces to Internet 
25 customers. Full forwarding tables are downloaded from 

RSCP_1 to EF_1 and RSCP_2 to EF_2 via the Table Download 
protocol . 

Shortcut data paths for higher CoS may be established 
for Internet services between EF_1 and EF_2 based on 

3 0 administration control or configured policies in the EFs . A 

client is run in the EFs to perform address resolutions. 
In the example of Figure 4, the following interfaces and 
protocols are required to support Virtual Subnet services: 
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EF_1 supports R-VPN_A Service Interfaces using RIP as the 
routing protocol and VPN-B Service Interfaces with OSPF as 
the routing protocol. EF_2 supports R-VPN_A and R-VPN C 
running RIP and R-VPN B running OSPF. 

For VPN_A, an instance of RIP will run between RSCP_1 
and EF 1 VPN_A attached devices and similarly between RSCP_2 
and EF_2 VPN_A attached devices. For full reachability, an 
instant of RIP associated with VPN_A operates between RSCP_1 
and RSCP_2 . 

For VPN_B, an instance of OSPF will run between RSCP_1 
and EF_1 VPN_B attached devices and an instant of OSPF 
between RSCP_2 and EF_2 VPN_B attached devices. To fully 
manage VPN_B across the two RSCPs, an instant of OSPF 
associated with VPN_B is run between RSCP_1 and RSCP_2 . 

For VPN_C, an instance of RIP will run between RSCP_2 
and EF_2 VPN_C attached devices. 

Shortcut data paths are established between EF_1 and EF_2 
for all Unicast data traffic. A client is run in the EFs to 
perform address resolutions for shortcuts via the RSCPs. 
NHRP is run on both RSCP_ 1 and RSCP_2 to support EF-to-EF 
shortcuts . EFs maintain a cache of most frequent 
connections (to minimize EF-RSCP activity) and connections 
are based on resilient SVCs (to minimize SVC set-up/tear- 
down) . 

Directed broadcast and multicast traffic is; forwarded 
to the RSCP's internal DF as shown in Figure 4. Using 
direct point to multipoint (p-to-mp) connections the DF is 
responsible for forwarding the traffic to the egress EFs. 
The internal DF is also used for providing unicast 
forwarding for VPNs during the detection and set-up time of 
short-cut connections (SVC) . 

The Packet Internetworking Processing Engine (PIPE) 
also known as the Internetworking Services Card (ISC) 
provides a high-fanout Edge Forwarder as a Universal Card 
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Slot (UCS) card on a mult i- services switch such as a 
Newbridge Networks 36170. This engine is used to forward IP 
traffic delivered to the system on Frame Relay (PR) , PPP or 
ATM interfaces (see Figure 5) . In the case of FR or PPP 
5 traffic, the sessions must first traverse a Frame Relay card 
in the 36170, however this card can be in a different shelf 
or system from the PIPE. 

The PIPE (ISC) provides the following instructions: 

a) automatic download of configuration information from the 
10 Configuration Server, 

b) initiation of SVCs as required to provide connectivity, 

c) termination of PPP sessions and FR connections, 

d) support for a number of independent forwarding contexts 
where total forwarding entries per PIPE is limited, 

15 e) obtains forwarding information from a Route server, 

f) packet classification and output queue select.ion in 
support of system- level traffic management policing, 

g) transparent bridging in support of the Bridged VPN 
service, 

20 h) IP unicast and multicast forwarding in support: of the VPN 

and Public Internet services, and 

i) N+l redundancy 

The ATM fabric provides interconnection of the CSI 

components for both control and user-data traffic. As shown 
25 in Figure 2, each component of the CSI System is connected 

to the ATM fabric; connectivity between components uses ATM 

Virtual Channel Connections (VCCs) . 

Most inter- component SVCs are "resilient, long hold 

time" SVCs , i.e. they are (re) established on component 
30 restart. On-demand SVCs are only used to provide shortcuts 

for the VPN service. The "resilient" nature of the SVCs 

indicates that the component that originally initiated a SVC 

will persistently attempt to re-establish the SVC if it is 

ever cleared by the network. The interval between such re- 
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establishment attempts is subject to an exponential backoff. 
The generation of SVC setups by a component is rate -limited. 

There are three primary categories of inter -component 
connectivity; these are described in the sections that 
follow. 

The CSI System uses three set of VCCs for connectivity 
in the control plane : 

a) from an Edge Forwarder to the Configuration Server for 
configuration information download 

b) from the Edge Forwarder to the Route Server for basic 
control function and on-demand address resolution for VPN 
services; and 

c) from the Route Server to all of the Edge Forwarders for 
distribution of broadcast and multicast. 

A unicast SVC is established from the Edge Forwarder to 
the RS/CS for registration and cache management. The RS/CS 
then establishes a LAN Control SVC back to the Edge 
Forwarder over which configuration is downloaded with 
guaranteed delivery. The RS/CS also adds the Edge Forwarder 
as a leaf of P2MP SVCs, one for each VPN. 

Traffic descriptors for all types of connections, 
except the RS SVCs, are configurable. The non- service 
interface connections are only configurable on a per- 
category per-realm basis. 

Each Edge Forwarder obtains from the Configuration 
Server the ATM addresses of all Edge Forwarders involved in 
Public Internet traffic forwarding, or of a Core Forwarder, 
to which it maintains ATM connectivity. The Edge Forwarder 
maintains a VCC to each Edge Forwarder and/or Core Forwarder 
for each class of service; this VCC is established upon 
restart and/or (re) configuration. Each Edge Forwarder 
obtains from the Configuration Server the ATM address of at 
least one Default Forwarder to which it maintains ATM 
connectivity. The Configuration information supplied by the 
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Configuration Server results from the configuration of the 
system. 

In addition to the base connectivity, an Edge Forwarder 
will set up a new short-cut VCC or re-use an existing 
5 shortcut VCC when it detects a flow that requires a class of 
service for which there is no short-cut VCC. Short-cut VCCs 
are disestablished, using a distinct clearing cause, when 
the VCC has been idle for some period of time. 

Traffic Management is handled independently on a per- 
10 connection basis. There are two major types of connections 
in CSI, Service Interfaces and the set of SVCs comprising 
the CSI Core. Each connection needs the standard ATM 
Traffic Descriptor plus additional parameters comprising the 
packet -level traffic information. Note that control and 
15 routing traffic gets priority over the data traffic. 

Figure 6 is an illustration of the CSI management 
model. As this figure shows, customers can have one or more 
realms. Each realm will have a type associated with it, one 
of bridged and/or routed VPN or public Internet. A bridged 
20 realm can have one or more VLANs associated with it. A VPN 
supports one or more bridging and/or routing. Bridging is 
supported through the use of virtual LANs and routing 
support uses virtual subnets . 

In addition to the common features listed cibove, the 
25 following features are provided for the Public Internet 
service : 

i) The CSI system uses External BGP (eBGP) to exchange 
routing information with peers. 

ii) The CSI system can use iBGP, eBGP , OSPF or XIPv2 to 

30 exchange routing information with customers; alternatively 

it can use static information about what is reachable on the 
customer end of a service interface. 
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iii) The CSI system uses Internal BGP (iBGP) to synchronize 
the externally-obtained reachability across the Route 
Servers . 

iv) The CSI system uses OSPF and/or static routes to manage 
5 the internal topology, i.e. the pre-defined reachability 

between Edge Forwarders, of the components that support the 
Public Internet Service. 

v) The CSI system combines both the internal and external 
topology information while building the forwarding table. 

10 vi) Support for multiple autonomous systems within a single 
Public Internet service. 

vii) Unnumbered interfaces are supported. 

The PIPE is used within 36170 networks as an element of 

the Carrier Scale Internetworking System. The primary 
15 function of the PIPE is to provide packet internetworking 

(layer 3+) service boundary for a wide range of low to 

medium speed 36170 access interfaces 

The Packet Internetworking Processing Engine provides 

the following primary functions: 
20 Fl: UCS behavior 

F2 : Virtual Connection support 

F3 : Packet forwarding 

F4 : PPP/ATM link termination 

F5 : 802.1(d) Spanning Tree Protocol (STP) 
25 F6 : Realm identity & network address assignment 

F7: "MPOA" client 

Within the CSI system the PIPE provides the routed 

(layer 3) and bridged (layer 2) forwarding services for 

various physical Access Interfaces across a range of 36170 
30 packet and cell interface cards. Together the PIPE and its 

associated Access Interfaces create a high fan-cut Edge 

Forwarder. The two network elements described in detail 

herein are the PIPE card and the Access Termination/Access 

Interfaces as provided by the various packet and cell cards. 
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The CSI system is designed to give a network operator 
facilities to provide a range of internetworking services to 
customers. Figure 7 provides a simplified schematic diagram 
of the flows of traffic and control data to and from the 
PIPE. The two boxes at the left and right represent Customer 
Equipment (CE1 and CE2) that require internetworking 
connectivity. Typically these boxes are routers and/or 
bridges with some form of WAN interface which would be 
connected into the CSI system. 

In a simple application CE1 , might be a router with: an 
Ethernet interface servicing a customer LAN; and a Tl 
interface providing the connection into the CSI system. The 
Access Termination (AT) on the 36170 would be a Tl port on a 
UFR card. There are two internetworking packet 
encapsulations which can be supported in this case . The 
first is Frame Relay and the second is PPP. In both cases 
the UFR card provides an Access Interface onto an ATM VC 
which connects to the PIPE across the 36170 ATM fabric. In 
both cases the PIPE provides all the necessary functions to 
process the encapsulations and forward the internetworking 
packets flowing to and from CE1. 

The Route Server (RS) provides the control information 
about forwarding so the PIPE can select the correct paths 
for delivering packets. The Default Forwarder (DF) and Edge 
Forwarder (EF) elements together provide the internetworking 
path between the PIPE and CE2 . The EF element could be 
either another PIPE/AT pair, a Ridge, etc. In the simple 
case packets will flow to and from CE1, though a path that 
goes from the PIPE up to the DF and on through the EF to 
CE2 . When it has been determined either automatically or 
through configuration that traffic between CE1, and CE2 (or 
more correctly traffic between the PIPE and the EF) is 
significant enough to require a more direct path a "short- 
cut" connection is established directly between the PIPE and 
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EF. Once the "short-cut" is set up traffic between CEl, and 
CE2 will flow over the "short-cut" bypassing the DF. 

In the "Public Internet" service case the connection 
providing the direct path between the PIPE and EF is 
configured administratively as a fixed link. This connection 
is established within the system at initialization when the 
component element involved reaches the full operational 
state and is maintained continuously. 

Figure 8 provides a more complete picture of a small 
but typical system, showing the relationships between 
various elements of the CSI application. There are a few 
elements, the Configuration Server (CS) and the Core 
Forwarder (CF) , added that complete the system along with a 
few PIPEs, ATs and RSs illustrating the modular nature of 
the CSI system. The CS provides the PIPEs and other elements 
in the system with the details about connections and other 
parameters necessary to bring the system to an operational 
state. The CF provides a function similar to the default 
forwarder in networks where the traffic characteristics 
require very high capacity default forwarding paths, e.g. 
services providing access to the Public Internet. 

Figure 8 also illustrates how a small but typical CSI 
system could be used by a network operator to provide a mix 
of services to various customers while maintaining necessary 
partitioning of control information and traffic load. 

The PIPE does not provide any external physical ports, 
consequently ports are not physical but are simply 
implementation abstractions. 

The Enhanced Processing Engine Card (EPEC) card hosting 
the PIPE card can be reset through system software as a 
maintenance function or mode reconfiguration from Node 
Management Terminal Interface (NMTI) . Software resets will 
tear down all active circuits and PPP connections 
immediately. 
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The PIPE has its primary physical attachment to the 
network fabric via the ATM interface to the 36170 backplane. 
Connections into the PIPE for the various functions detailed 
below are provided via PVCs, SVCs and SPVCs. 

Aggregates to the CSI core are supported on 
conventional multiprotocol VC terminations and are either 
statically assigned or dynamically bound SVCs using the 
"MPOA" client function (F7) . Frame Relay, PPP or ATM 
circuits providing network layer encapsulation services are 
terminated on the PIPE as PVCs or SPVCs , using this same 
termination function, via the FRF. 8 Inter-Working Unit on 
the various supported 36170 frame relay interface cards. 
PPP packets are transferred between the PIPE and the 
supported 36170 interface cards using PVCs or SPVCs over a 
PPP/ATM transparent HDLC encapsulation. 

The following table shows all of the connection types 
supported on the PIPE: 







C ' 


i ■ 




Frame Relay Service interfaces 


All Frame Relay Cards 


Yes 


Yes* 


No 


ATM Service Interfaces 


AH Cell Relay Cards 


Yes 


Yes 


No 


PPP Service Interfaces 


All Frame Relay Cards 


Yes 


Yes* 


No 


PPP over FR Service Interfaces 


All Frame Relay Cards 


Yes 


Yes* 


No 


PPP over ATM Service Interfaces 


All Cell Relay Cards 


Yes 


Yes 


No 


Short-cut Paths between Edge 


All Cell Relay Cards 


No 


No 


Yes 


Forwarders 










Fixed link Paths between Edge 
Forwarders 


AM Cell Relay Cards 


No 


No 


Yes 


Control Connections to Route and 


All Cell Relay Cards 


No 


No 


Yes 


Config Servers 











* This is only supported if all NNI Cauls arc Cell Relay. Fran* Relay and PPP SPVCs 
are only supported over the Cell Relay SVC infrastructure in this release. 

Connection Types supported by the PIPE 



Several SVC connections must be maintained continuously 
to provide proper functioning of the CSI system. If one of 
these persistent connections is released, a call attempt is 
made, again to the same destination address or, if more than 
one destination address is available, the full set of 
possible destinations. The call attempts are made with an 
exponential backoff on failure with the initial time between 
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attempts starting at a base interval (e.g. 1 second), after 
8 attempts it does not increase further (e.g. starting at l 
second the final backoff interval will be just over a minute 
- 64 seconds) but the PIPE may continue to attempt the call 
indefinitely. The behavior if the 8th and final attempt 
fails is particular to the type of connection, some will 
persist indefinitely and others will stop at the 8th attempt 
and raise an alarm. The PIPE is responsible for determining 
if any information preserved over the reconnect has changed 
during the outage and reacting to these changes. 

Transport services and applications above IP (and other 
best-effort layer 3 protocols) are sensitive to cell loss, 
and the upper-layer windowing protocols will tend to drive 
loads to the threshold of congestion for the network, 
however, early packet discard (EPD) schemes are available 
which reduce the effect of congestion in the ATM fabric and 
provide improved feedback to properly behaving windowing 
mechanisms. A simple form of ATM traffic shaping is 
performed on the PIPE on a per-VC basis for traffic toward 
the backplane. Traffic Policing is unnecessary for the PIPE 
as it is a trusted UNI device. The operator can define the 
traffic contracts for specific categories of VCs initiated 
from the PIPE. These categories are: 

1) Connections to the Configuration Servers; 

2) Connections to the Route Servers; and 

3) Short-cut connections to other Access Forwarders. 

The service interface traffic parameters can be any 
valid selection as specified in traffic management. It is 
intended that a network management platform will support a 
profile mechanism for service interfaces. This reduces the 
amount of configuration required for each service interface. 
This is solely a management construct. Each service 
interface at the PIPE is controllable separately. 
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The PIPE implements services within ATM AAL5 
encapsulation which are compatible with the multiprotocol 
LLC / SNAP encapsulation. This provides IP/ATM, transparent 
bridging over ATM and PPP/ATM functions. This is used to 
provide two features within the CSI System. The first is to 
provide the termination for connections provided on the 
Access Interfaces of the CSI system including: access over 
native ATM services; internetworking with external Frame 
Relay attached network layer devices via the FRF. 8 service 
IWU; and PPP attached devices as provided on the various 
36170 FR interface cards. 

The second is to provide the connectivity over short- 
cuts and statically configured VC paths across the core 
fabric to other networking elements in the CSI System. 

The basic network layer forwarding mechanism is common 
to both bridged and routed networks. The model for this 
mechanism is illustrated in Fig. 9. 

The PIPE nominally supports a maximum number of realms. 
The realms on the PIPE are autonomous such that each realm 
has its own set of Forwarding Information Bases (FIBs) and 
no forwarding/ routing information or other state is shared 
between the realms. This allows the realms to have non- 
unique address spaces if required and, more generally, 
isolates the realms from one another with respect to network 
address assignments. 

For any particular Realm, one of the aggregate 
interfaces will likely be configured as a connection to the 
default forwarder. Forwarding information about the other 
interfaces is either configured statically through one of 
the management interfaces or via "MPOA" client (F7) . 
Finally, the FIB will be updated automatically with the new 
link- local forwarding information when PPP, Bridged or 
IP/ATM and Bridged or IP/FR-ATM Service Interfaces are 
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initiated or when Service Interface is disabled (either 
administratively or when the underlying connection closes) . 

An element of packet forwarding on the PIPE is the 
process used for discarding traffic when queues reach an 
overflow state. The PIPE provides two discard disciplines 
which are applied to the output queues. The first is a 
variant of Random Early Discard (RED) and the second is 
simple head-drop discard. The output queuing control is 
provided by a per service interface with a default setting 
of RED enabled. 

With RED turned on, as the output queue approaches an 
overflow state, packets are discarded with a pseudo-random 
selection of the packets to discard exponentially weighted 
towards the earliest packets arriving. This is a simplified 
description of RED. 

When RED is disabled, the transmit queues operate in a 
simple First In First Out (FIFO) discipline with discards 
performed at the tail of the queue as it reaches an overflow 
state. In the extreme case where overflow occurs on input, 
the PIPE card discards on the tail of the input queue as new 
packets arrive . 

For VPNs which have the "MPOA" client lookup cache 
management function, the packet forwarding function applies 
a flow detection mechanism on source-destination sets which 
are not currently in the cache. This mechanism monitors the 
traffic for the new source-destination pair and identifies 
the traffic as a flow when the traffic reaches a rate of at 
least M packets in N seconds . The default values are 4 
packets in 10 seconds. Only when a flow is detected does the 
"MPOA" client establish a short-cut path. 

IP forwarding is the internetworking layer applied to 
each packet received on an IP routed service interface. This 
includes applying error checking rules and policy filtering, 
determining what to do with the packet in terms of the next- 
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hop to its ultimate destination and finally queuing the 
packet for output or possible local delivery. Although 
Routed VPNs and Internet Access appear on the surface to be 
significantly different features, when examining the PIPE IP 
forwarding function those differences are mostly 
superficial. Routed VPNs tend to have a smaller set of 
address prefixes which change over time driven by supporting 
flow detection and consequently triggering "short-cuts". 
Internet Access typically requires a very large set of 
address prefixes which will change over time mostly based on 
updates provided by the route server via the Full Table 
Download function and the set of active interfaces will be 
relatively constant . 

The IP forwarding function on the PIPE provides support 
for processing IP packets which are forwarded in and out of 
service interfaces which are operating using the LLC/ SNAP 
bridged encapsulation. This function provides the necessary 
ARP capabilities to bind and maintain MAC addresses for the 
IP hosts on the remote LAN segment. This function is not 
supported for PPP bridged interfaces'. 

The IP forwarding mechanism (IFM) works by using 
various layer 3 information within each packet (along with 
information about which interface the packet arrived on) and 
switches packet traffic between the various PPP and IP /ATM 
links . 

The following is a simplified description of the IFM 
with the terminology aligned to CSI : 

1) the forwarder receives the IP packet (plus other details) 
from the link layer; 

2) the forwarder validates the IP header; 

3) the forwarder performs processing of most of any IP 
options; 
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4) the forwarder examines the destination IP address in the 
IP header against the FIB and assuming it satisfies basic 
requirements for forwarding ; 

5) the address of next hop for the packet (and the correct 
output interface) is determined; 

6} the source address is tested for validity and any 
administrative constraints are applied ; 

7) the forwarder decrements TTL and then tests for expire ; 

8) the forwarder performs processing of any IP options which 
could not be completed in step 3 ; 

9) the forwarder performs any necessary IP fragmentation; 

10) the forwarder determines the link layer address of the 
next hop for the packet; and 

11) finally the forwarder queues the packet for delivery on 
the interface out to the next hop. 

For directed diagnostic an IP forwarding table dump is 
provided to verify the operational state of the FIBs 
The PIPE supports bridge forwarding within designated VPNs. 
Bridging is available between service interfaces which 
belong to the same VLAN and protocol family (s) . Bridge 
forwarding on the PIPE can be characterized as half bridging 
since it is connected to another bridge via a point-to-point 
link. 

Diagnostics on the PIPE for Bridge Forwarding include a 
bridge table dump and view of the current state 
configuration of spanning tree. This forwarding table dump 
and STP view matches the elements contained in the Bridge 
Management Information Base (MIB) . 

The bridging function on the PIPE card is determined by 
the configuration information sent to it by the RS . This 
configuration includes the definition of VPNs, VLANs and the 
services they offer. A service interface or set of service 
interfaces can only be bound to a VLAN or set of VLANs. 
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With this information configured on the PIPE the bridge 
function only forwards traffic between service interfaces in 
the same VLAN. In this way, traffic is forwarded to only a 
subset of service interfaces. 

The Bridging Algorithm used for the PIPE follows the 
standard defined in IEEE 802.1. The following functions are 
performed by the PIPE as part of its bridging role: 1) 
Bridge packets from one Bridging interface to another; 2) 
Learning and Cache Management; and3) Filter packets to 
prevent loops (informed by F7, the 802.1 (d) Spanning Tree 
Protocol) . 

The first function is the basic relay of packets from 
one end station to another on a different interface. The 
basic process is:l) Bridged Packets are received by the 
PIPE; 2) The MAC address and service interface association of 
the sender are recorded in the PIPE'S cache;3) The 
Destination MAC contained in the packet is examined and 
matched to an entry in the PIPE'S existing cache; 4) If an 
entry exists (the cache contains permanent entries for the 
reserved MAC broadcast and multicast addresses) , the packet 
is passed out the associated output interface (for the 
broadcast /multicast entries this is the DP which then 
provides the correct flooding); 5) If an entry does not 
exist, a message is sent to the "MPOA" client function (F7) 
which will attempt to get a resolution for the Destination 
MAC; 6) If the Destination MAC is resolved, the packet is 
passed out the associated service interface (in same manner 
as step 4) ; otherwise7) The packet is discarded. 

The second function is MAC address learning and cache 
management. When packets are received by the PIPE, a record 
of the source MAC address and its related service interface 
is kept in a cache. This cache allows the PIPE to easily 
look up the relationship between the source and destination 
identified in the packet. If the configuration for the 
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source and destination match, the packet is forwarded to the 
appropriate service interface. However, if the configuration 
does not match, the packet is discarded or checked for 
special handling, in the case of the RS, which is required 
5 to communicate with all stations. 

The size of the cache, however, is not infinite so an 
aging mechanism is required to maintain a set of recently 
used records for source and destination to service 
interface/VIiAN mappings. The aging function determines 

10 whether a cache entry has been used recently. If the entry 
has been used it is refreshed and maintained in the cache. 
If has not been used, the entry is deleted to make room for 
new cache entries . 

The PIPE card will generate billing records every 

15 fifteen minutes using the same format as using by 36170 SVC 
records. Information will be provided in the records for 
transmitted packets, received packets, transmitted bytes, 
received bytes. Records will also be created when the PVC is 
disconnected. This will provide the data for the final 

2 0 portion of a fifteen minute interval for which the PVC was 

connected. 

The Point-to-Point Protocol (PPP) provides an 
interoperable method for communicating multi -protocol 
network datagrams. The PIPE provides for the PPP termination 
25 of standard bit -synchronous PPP over HDLC connections into 

the 3 6170 CSI system by internetworking with the transparent 
HDLC frame forwarding function on 36170 FR cards which has 
an optional mode for providing an internetworking service 
which supports conversion of PPP packets to and from the PPP 

3 0 over AAL5 encapsulation. This function is intended to 

support the " leased- line" mode of operation for permanent IP 
services, for example Tl/El ISP customer "feeds,. LCP options 
are set by the network management entities through the 
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service configuration for a particular realm and loaded 
through the "MPOA" Configuration. 

The PIPE provides for static configuration of the 
authentication control information including the shared 
5 secrets used within the protocol . These are configurable via 
the network management entities and are normally loaded 
through the "MPOA" Configuration Server. 

The IP Control Protocol is used on fully established 
and authenticated PPP links to negotiate the IP address at 

10 each end of the PPP link and to negotiate VJ TCP/IP header 
compression. The peer's IP address can be assigned or 
discovered and verified with this protocol, dependent on how 
the link has been configured to negotiate this option. By 
default, address assignment for the link peer and link local 

15 assignment from the peer are both disabled on the PIPE. 

Van Jacobson (VJ) TCP/IP header compression, an option 
that can be negotiated in IP Control Protocol (IPCP) can 
reduce a standard 4 0 byte TCP/IP header to variable size 
header between 3 and 16 bytes for most of the TCP packets 

20 transmitted over a PPP connection. VJ header compression and 
decompression is a function supported on the PIPE. By 
default, it is disabled but it can be enabled on individual 
PPP service interfaces through the management interfaces. 
The use of VJ header compression does have an impact on 

2 5 performance and other resources in the PIPE. In addition, 

depending on the nature of traffic flowing across the link 
and the number of "VJ slots" assigned to it may provide 
little or no compression. 

The Internet Engineering Task Force (IETF) standard PPP 

3 0 network control protocol (NCP) for bridging, the Bridge 

Control Protocol is used on fully established and 
authenticated PPP links terminating on the PIPE to negotiate 
the operation of transparent bridging of 802.3 LAN traffic. 
Until PPP has reached the Network Layer and BCP is fully 
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negotiated, bridged data packets will be discarded by the 
PIPE. 

Transparent bridging is accomplished by negotiating the 
following BCP options: 



10 



mm 


MM 






1W| 


MAC-Support 
negotiation 


3 


MAC type traffic supported 
Possible values : 
l=802.3Ethernet only 


3 


802.3 


Tinygram- 
Comprcssion 


4 


Compression of a small PDU 
that has padding provided the 
PDU is smaler than the 
minimum PDU size and has a 
LAN Frame Checksum 
Possible values: 
l=enabled,2=disabled 


3 


1 


Mac-Address 


6 


Ability to have MAC Address 
announced or assigned 


8 




Spanning- 

Trcc-Protocol 

negotiation 


7 


Negotiate version odf STP 
Possible Values: 0=NULL, 
l=802.1(d) 


3 


802.1(d) 



2 0 The CSI system provides no support for the LAN- 

Identification option and, because there is no requirement, 
there is no support for options related to source- route 
bridging or proprietary Spanning Tree Protocols. 

The Internetworking Realms on the PIPE provide an 

2 5 abstraction for organizing related service interfaces; the 

lower layer PPP and FR access ATM VC interfaces and 
associated aggregate interfaces into the core networks; and 
the addressing information of external network services 
required for normal operation. The PIPE supports a fixed 

3 0 number of independent realms and a fixed number of service 

interfaces. These interfaces are distributed across realms 
ensuring that each realm will have a fixed number of 
interfaces. For example, a PIPE supporting a maximum of 500 
interfaces and 5 realms might be configured to handle 3 
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routed IP realms, 1 with 2 00 interfaces and 2 with 50 
interfaces, and 2 bridged realms each with 10 0 interfaces . 
If a connection is attempted which exceeds the configured 
interface limit for a particular realm, the connection is 
5 refused. 

The PIPE supports a few methods of administratively 
assigning network addresses and, where required, netmasks 
and forwarding prefixes (static routes) , to the various FR, 
PPP and ATM link interfaces. In addition to the various link 

10 interfaces the PIPE provides an abstracted "null" interface 
which can be used in conjunction with the forwarding 
function to provide for discard (or black-holing) of various 
categories of traffic. The appropriate methods are 
determined when a new interface is configured on the PIPE 

15 depending on the specific type of Access Interface/Service 
Interface/Core Interface required. Once an interface is 
defined, but before the configuration applied and it is 
activated, the interface is linked to the appropriate realm, 
ensuring that the traffic associated with that interface 

2 0 will only be forwarded within the correct network address 
spaces . 

Typically, PPP links will either be configured using 
the "numbered -numbered" model, where the PPP peers are the 
only two nodes in a distinct point-to-point subnet, or the 

25 "unnumbered-unnumbered" model, where the peers have no IP 
addresses for the PPP interfaces on the PPP link. The link 
simply provides a bi-directional path between two distinct 
subnets. The PPP links may also be configured using the 
"numbered- unnumbered" model which means that only the 

30 interface address of the remote peer from PIPE is set for 

the link. For the "unnumbered-unnumbered" and the "numbered- 
unnumbered" models the PIPE supports the use of the "local 
route server" address to help manage control of these types 
of connections. 
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The local address assignments for ATM and Frame Relay 
service interfaces are provided from the Configuration 
Server /Route Server based on the PIPE providing the 
information required to determine which Service 
5 Interface/Access Interface is currently serviced by the 
PIPE . 

Inverse ARP (InARP) is the standard method, in older, 
non-MPOA environments, for network devices to discover the 
IP address of a peer device associated with a particular 

10 virtual circuit (e.g. ATM or Frame Relay) . This allows for 
verification and dynamic configuration of address mappings 
rather than relying on static configuration of the ARP 
table . The PIPE can be configured to use InARP to discover 
the IP addresses of the network neighbors connected to the 

15 aggregate interfaces. Some existing implementations of IP 
over NBMA media have no support for Inverse ARP. To allow 
interoperation, controls for disabling/enabling InARP and 
for static ARP table administration are provided via the 
PIPE management entities. Service interfaces established and 

2 0 configured using MPOA do not support InARP. 

Address assignments for the "MPOA" ATM VC core 
interfaces are provided from the Configuration Server and 
Route Server. The common controls for all Service Interfaces 
are Enabled/Disabled and Reset. In addition to being able to 

2 5 disable, enable or reset the interface the operator can 

examine the state of the interface and view various 
interface statistics. There are many statistics and 
configuration details which are common to all interfaces. 
The PIPE provides all of the relevant values defined in the 

3 0 current IF MIB and also provides a number of useful summary 

statistics through various management interfaces.. In 
addition, diagnostics and controls have specific behaviors 
related to the various types of interfaces. Disable and 
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Enable are used to temporarily block an interface from being 
used. 

For PPP interfaces, Reset causes the PPP state machines 
to gracefully tear down the link and return to the initial 
5 state. This control is intended for forcing the controlled 
disconnection of specific PPP connections. For FR and ATM 
service interfaces, Reset causes the connect to redo any 
defined initial exchange. For both PPP and FR/ATM service 
interfaces, a reset causes all queues for the interface to 
10 be flushed. 

Information relevant to tracing the PPP connection 
state is collected and made available through various 
management interfaces. Tracing of CHAP does not expose 
security specific details of the authentication protocol. 
15 The trace facility recognizes all assigned numbers for these 
PPP protocols listed in current IANA assigned numbers, 
including protocols and options not supported on the PIPE. 

Information related to tracking the state of FR and ATM 
Service Interfaces and the ATM Core Interfaces is collected 

2 0 and made available through various management interfaces. 

The PIPE provides a few control interfaces to aid in 
network and system diagnostics and maintenance : 1) Echo 
packet generation - provided to verify the IP protocol 
connectivity between PIPE and other network entities. The 
25 ICMP echo request is the basis of the commonly used PING 
command. The PIPE can generate such requests and forward 
them to other network entities. The PIPE also replies to 
ICMP echo requests. 

2) Network path tracing - provided for tracing the 

3 0 route IP traffic takes to reach a particular destination 

host interface. This function is equivalent with 
the"traceroute" command in UNIX. The mechanism involves 
launching a specially sequenced stream of UDP probe packets 
and then listening for ICMP time-exceeded (TTL-expired) 
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responses from the forwarding devices along the path. The 
addresses of intermediate devices that responded as IP 
packets traversed the path are displayed along with an 
estimate of the delay based on the round trip for each 
5 transaction. 

The PIPE supports Spanning Tree Protocol as defined in 
IEEE 802. l(d. The Spanning Tree implementation allows for 
loop-free topology such that a path exists between every 
pair of LANs in the network. STP is negotiated on a per VPN 

10 basis, enabling each VPN to have a separate STP instance. 
STP does not apply to the Internet Access case . 

Extensions to the standards are based on those defined 
below. 1) If the PIPE becomes unregistered all established 
SVCs are torn down, such that bridging traffic and STP BPDUs 

15 are not forwarded. 2) A configuration BPDU is recognized and 
ignored if it is received by its originator on the same port 
from which it was sent . 3 ) BPDU received over ATM from 
anything other than the through the "MPOA" client are 
ignored by the PIPE. (The "MPOA" client will drop any BPDU 

20 that is not received from a registered device.) 4) If the 
Bridge Aggregate interface for the particular realm goes 
into a blocking state, the destination cache must be flushed 
to ensure that no entries point to the [now blocked] 
interface. In addition, when the Bridge Aggregate returns to 

25 the forwarding state, the source cache for the realm is 

flushed so that it can resynchronized with the MPOA client5) 
Negotiation for the version of STP supported between 
registered devices is limited to protocol 1 (IEEE802.1 (d) ) 
or NULL in the case where an external bridge does not 

3 0 support STP. 

STP on the PIPE affects the state of one or more of its 
interfaces . Current STP states of the Service Interfaces are 
viewable via the NMTI management interface. The STP 
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standard, described in IEEE 802.1 (d) , provides for the 
following configurable parameters: 



Priority 


used to determine the cost of 
using this bridge as root 


Max Age 


amount of time before a 
configuration message should be 
deleted 


Hello Time 


time between configuration 
BPDU advertising root status 


Forward Delay 


length of time spend in 
intermediate state before 
changing from blocked to 
forward state 


Aging Time 


length of time since a root sent a 
configuration message 



These parameters are configurable through a management 
interface and accessible via SNMP . Default STP parameters 
are used in the absence of user configured values. 

15 The PIPE communicates with the Configuration Server to 

resolve which Route Server is controlling each of the Realms 
supported by the PIPE. The PIPE communicates with each Route 
Server to register and verify new service interfaces, to 
declare new locally attached hosts and subnets, and to 

2 0 resolve remote bridged or network-layer addresses to ATM 
addresses . 

After being initialized from the Control Card, the PIPE 
first connects to the Configuration Server. It uses the 
address configured for the Configuration Server which 

25 defaults to a well-known AESA anycast address. The traffic 
parameters are configurable . 

The PIPE will be downloaded with information about each 
Realm within the system. This includes the ATM addresses of 
the primary and backup route servers. As the information 

30 changes, the Configuration Server keeps each of the PIPEs 
updated . 

The connection to the Configuration Server is 
maintained continuously using a persistent SVC. If the 
connection fails or is released the persistent SVC mechanism 
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will attempt a reconnect (with an initial period of 1 
second) to the same anycast address and will continue to 
attempt the call indefinitely. Because of the nature of the 
anycast address mechanism when the new connection is 
5 eventually established it may even be to a different 

Configuration Server. The exact same procedures as explained 
for Initialization above apply to the new connection. 

The Configuration Servers, in an N+l redundcint system 
of databases, distribute to each of the PIPEs the: 
10 information necessary for establishing the LAN data and LAN 
control connections required for all the realms each of the 
PIPEs are serving. 

After receiving the ATM Addresses of all of the Route 
Servers, the PIPE establishes a LAN Data connection to each 
15 of the Route Servers for each of the VPN/IA/Realras that it 
has Service Interfaces for. The traffic parameters are 
configurable on a per- VPN/LA/Realm basis. The connection 
does not use any assured delivery capabilities. 

When a Route Server detects a LAN Data connection 

2 0 having been established, the Route Server starts the 

registration mechanism by sending the Register Server 
message (i.e. supplies the features it supports) to the 
PIPE. The PIPE responds with a Register Client message 
(supplies the features the PIPE supports) back to the Route 
25 Server. The Route Server then sends a Register Response 
message which indicates a successful registration. 

Following successful registration, the PIPE establishes 
a LAN Control to the Route Server. This connection uses 
different traffic parameters that are again configurable on 

3 0 a per-Realm basis, and using the Q.SAAL assured delivery 

bearer mechanism. This connection is used provide various 
elements of configuration information. Also following 
successful registration, the Route Server will add the newly 
registered PIPE to a LAN Broadcast (point- to-multipoint ) 
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connection. The Route Server uses this connection for 
broadcast packets, multicast packets and for table 
downloads . 

The LAN Data, LAN Control and LAN Broadcast connections 
5 are maintained continuously as long as Service Interfaces 
exist for the VPN. If a LAN Data or LAN Control connection 
is released the persistent SVC mechanism (with an initial 
period of 1 second) will attempt a reconnect using the 
current Route Server (e.g. primary) address. If the 

10 persistent SVC mechanism fails on the final exponential 
backoff to the current address, the PIPE clears any LAN 
Data, LAN Control and LAN Broadcast connections to the 
failed Route Server. An attempt is then made to set up the 
LAN Data connection to the other Route Server (e.g. backup) 

15 address, thereby restarting the registration process. 

Since the PIPE cannot control its addition to the LAN 
Broadcast connection, it cannot engage in the persistent SVC 
mechanism for this connection. Instead, the PIPE relies on 
the current (e.g. primary) Route Server to perform the 

2 0 persistent SVC mechanism. On detection of the loss of the 

LAN Broadcast connection the PIPE will however begin a timer 
of duration equivalent to, but slightly longer than the 
total duration of the persistent SVC mechanism's retry 
period. This timer is canceled should the errant LAN 
25 Broadcast connection be re-established. On expiry of this 
timer, the PIPE will clear any LAN Data or LAN Control 
connections to the failed Route Server. The PIPE will then 
attempt to set up the LAN Data connection to the other Route 
Server (e.g. backup) address, thereby restarting the 

3 0 registration process. 

If the persistent SVC mechanism fails on the final 
exponential backoff to both Route Servers for a 
VPN/IA/Realm, then the PIPE informs the Configuration Server 
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that that particular set of Route Servers is unreachable and 
a major alarm is raised on the 36170. 

After -1.3 times the Route Server cold-start time and 
including a random factor of +0.15 RS cold start time of 
5 outage of the LAN Data connection, the operation of this 

Realm ceases. All cache entries are removed. This limits the 
potential of creating forwarding loops and unintended black- 
holes within the network. 

The PIPE supports bridged VLANs for any protocol 

10 family. Bridged VLANs separate traffic of different 

protocols and limit the protocols that can be used to 
communicate from specific hosts. They can carry all network- 
layer protocol families or any of the following:!) IP 2) IPX 
(Internet Packet exchange) 3) XNS (Xerox Network System) 4) 

15 SNA (Systems Network Architecture) 5) NetBIOS (Network Basic 
Input/Output System) 6) CLNP 7) Banyan VINES (Virtual 
Network System) 8) AppleTalk 9) DECnet 10) LAT (Local Area 
Transport) . 

VLAN membership is configured from the route server. 
2 0 There is no local support for configuring bridged VLANs. 

The PIPE supports routed virtual subnets for the IP 
protocol only. Membership in a virtual subnet determines PPP 
IP address assignment, broadcast groups, etc. Membership in 
virtual subnets is configured from the route server. There 
25 is no local support. 

Service Interfaces can belong to multiple VLANs and 
Virtual Subnets . A Service Interface can belong to no more 
than one VLAN which supports the same protocol. A Service 
Interface can belong to many virtual subnets provided there 
30 is no overlap in assigned subnet IP addresses. 

Except in the case of the Internet Access service, all 
other Realms (the VPNs) use the VIVID cache management 
protocols with the route server to learn and provide 
information about MAC and Network- layer addresses. 
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The Internet Access service uses Table Download (TD) in 
addition to the Cache Management protocols described above. 
The Table Download process begins with the Route Server 
providing the minimal set of cached Network- layer (IP) 
5 addresses required to allow the PIPE to begin processing. 
Following the initial table phase, the Table Download 
process continues with the final table phase. During this 
phase, the Route Server provides all remaining applicable 
Network- layer (IP) addresses. 

10 At any time following the initial table download, table 

maintenance (adds & deletes) is performed using the VIVID 
cache management protocols described above. 

Table Download may occur under any of three 
conditions : 1) Network cold start. 2) Partial network restart 

15 / cold start (multiple PIPEs) . 3) Single PIPE restart / 
reconf ig . 

In fact, Table Download may begin under a single PIPE 
restart condition (3) which may later turn out to be a 
partial network restart condition (2) . Table Download will 

2 0 utilize the unicast LAN Control SVC during the initial table 

phase of Table Download. In order to provide good system 
start up performance without impacting the system when only 
a single PIPE is restarting, Table Download will utilize 
unicast (LAN Control) or multicast (LAN Broadcast) 
25 facilities depending on the number of PIPEs in the final 

table phase of Table Download. Table Download will also be 
capable of switching from using unicast (LAN Control) to 
multicast (LAN Broadcast) facilities as PIPEs enter the 
final table phase of Table Download. 

3 0 Paths are constructed between Forwarders using SVCs set 

up using the ATM Address in the path table, the configured 
traffic descriptor for paths in the particular Realm, and 
B-HLI parameters indicating the type of device (the PIPE) 
that is establishing the connection. Parallel paths between 
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Forwarders are disallowed except where difference levels of 
CoS are required. Two types of paths may be created between 
Forwarders (PIPEs) 1) aged; and 2) permanent. 

The determination that a path is aged or permanent is 
5 made based on aging information provided by the Route Server 
when a path table entry (egress IP to ATM address mapping) 
is downloaded to the PIPE . The Route Server provides path 
table entries either as part of initial table download or on 
an exception basis . 

10 Aged paths are set up on demand, whenever a datagram is 

received whose Network- layer (IP) address is mapped to an 
ATM Address where no SVC currently exists. These paths are 
aged out when there has been no data flowing over the 
connection for at configurable period of time. Age time is 

15 configurable on a per path basis. The default age time is 30 
seconds . Aging out causes the SVC for the path to be 
released. When new data arrives for the path, the SVC is re- 
established. While the path is being established or re- 
established, data is forwarded to the Default Forwarder. 

2 0 Permanent paths are set up as soon as a path table 

entry is provided to the PIPE by the Route Server and are 
maintained using the persistent SVC mechanisms . Should the 
persistent SVC for a path fail on its final exponential 
backoff, the Route Server will be informed so that routing 
25 information can be re-calculated. The PIPE will continue 

periodic attempts to re-establish the persistent SVC for the 
path. When the persistent SVC for the path is re- 
established, the Route Server is again notified so that that 
routing information can again be re-calculated. 

3 0 Paths may be viewed from a management interface. The 

paths the connections take through the network can only be 
derived manually. There is no call trace support for these 
connections . 
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N+M PIPE Redundancy is a form of warm redundancy that 
can optionally be enabled for the PIPE. The redundancy 
applies only within an individual 36170 and applies to the 
whole 36170. Separate independent N+M partitions are not 
5 available. 

N PIPE cards are providing service to the N PIPE 
instances that have Service Interfaces programmed. M PIPE 
cards, referred to as the spare cards, are sitting around 
idle waiting for one of the N PIPE cards to fail. 

10 A PIPE Instance is a floating set of functionality 

which can be placed on any PIPE Card within the 3 6170. It is 
identified by an 8-bit number. Service Interfaces are 
assigned to a PIPE Instance through management interaction. 
All CSI configuration, application maintenance, and 

15 statistics are performed by identifying the PIPE Instance, 
not the PIPE slotld. The slotld is only used for card- 
specific maintenance, such as resetting, software 
downloading, etc. Everywhere else the PIPE instance is 
referred to as a PIPE. 

2 0 The operation and the alarms that result from the 

operation of this redundancy scheme will be similar. The FS 
describes the dynamic nature of the assignment of PIPE 
Instances for service on PIPE Cards. It is to be noted that 
lower PIPE Instance numbers receive higher priority for 
25 assignment to a PIPE Card although the priority is non- 
preemptive . 

When a non-spare (active) PIPE running applications 
becomes unavailable, all applications on the card are moved 
to a spare PIPE if it is available. Since PIPE N-i-M 

3 0 redundancy is not hot redundancy, the service interfaces and 

other applications are reset to the initial state . All 
current short-cuts and connections to the RS/CS aire 
released. One of the formerly spare PIPE becomes active. 
This PIPE card starts setting up connections to the 
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Configuration Server and the appropriate Route Servers and 
creates the necessary short-cuts. 
Industrial Applicability 

The present invention is applicable in the provision of 
5 internetworking services wherein a common backbone 

infrastructure is shared by several distinct user networks. 
The infrastructure is shared through the concept of 
independent realms, each representing an instance of a 
virtual private network or public Internet access. 

10 The Carrier Scale Internetworking (CSI) system, in 

particular, provides for the cost-effective deployment of 
dif f erentiable internetworking services. CSI provides for 
both Virtual Public Network (VPN) and Public Internet 
services offering per-customer dif f erentiable traffic 

15 handling. In the VPN case, the solution framework provides 
for customer isolation including segregation of resources 
(e.g. address spaces, bandwidth) . 

While particular embodiments of the invention have been 
described and illustrated it will be apparent to one skilled 

2 0 in the art that numerous changes can be made to the basic 

concept. It is to be understood that such changes will fall 
within the full scope of the invention as defined by the 
appended claims. 
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CLAIMS 

1. A method of forwarding packets in a communication 
system having multiple ports, said method comprising: 

5 providing said system with, multiple forwarding tables , - 

receiving said packets at one of said ports; 
selecting an appropriate forwarding table based on a 
source address in said packets; and 

forwarding said packets to one of said ports based on a 
10 destination address in said packets and information in said 
appropriate forwarding table. . 

2 . The method as defined in claim 1 wherein said 
packets are received at said ports by service interfaces which 

15 define realms each relating to a specific instance of an 
internetworking service function. 

3 . A method as defined in claim 2 wherein said 
specific instance is a public Internet access service. 

20 

4. A method as defined in claim 2 wherein said 
specific instance is a virtual private network (VPN) 
service . 

25 5. A method as defined in claim 4 wherein said VPN 

service is a bridged and/or routed connectivity 'service . 

6. A method as defined in claim 4 wherein said VPN 
service is a network layer connectivity service: 

30 '■ 

1 . A method as defined in claim 1 wherein said 
internetworking devices include an ATM backplane. 
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TENDED SHEET 



8 . A packet forwarder for a communication, system 
comprising: 

a plurality of ports 

multiple service interfaces providing input! to said 
ports, said service interfaces including source land 
destination addresses ; 

multiple forwarding tables defining isolated realms to 
which said service inter-faces belong based on said source 
information; and 

forwarding means to direct said service interfaces to an 
appropriate port based on the destination address and 
information in said forwarding table. 

9. A packet forwarder as defined in claim a wherein 
said plurality of ports include ingress ports and egress 
ports . 

10. A packet forwarder as defined in claim 8 wherein 
said isolated realms are assigned to specific network users. 

11. A packet forwarder as defined in claim 8 service 
interfaces relate to physical and logical connections. 

12. A packet forwarder as defined in claim 11 wherein 
said lo'gical connections include multiple traffic flows from 
one or more ingress ports. 

13. A packet forwarder as defined in claim 8 wherein 
said isolated realms relate to a specific instance of an 
internetworking service function. 

i 

14 . A system as defined in claim 13 wherein | said 
internetworking service function is a Public Internet access 
service . 

S4 



15. A system as defined in claim 13 wherein ; said 
internetworking service function is a virtual private 
network (VPN) service. 

S 16 . A system as defined in claim 15 wherein said VPN 

service is a bridged and/or routed connectivity service . 

17. A. system as defined in claim 16 wherein said 
internetworking service functions are provided over an ATM 
10 network. 

18 . A system as defined 16 wherein said 
internetworking devices support multiple protocols. 

15 13. A system as defined in claim 18 wherein said 

internetworking devices provide services at both the packet 
and frame levels. 

20 . A system as defined in claim 19 wherein said 
20 internetworking services are managed by a single service 
provider . 

21. A system as defined in claim 19 wherein said 
multiple protocol over ATM (MPOA) service includes a MPOA 

25 client lookup cache management function. 

22 . A system as defined in claim a wherein one of 
said int erne twor king devices is an internetworking services 
card for providing routed and bridged forwarding, services. 
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CLAIMS 



1. A method of forwarding packets in a communication 
system having multiple ports, said method comprising: 

5 providing said system with multiple forwarding tables; 

receiving said packets at one of said ports; 
selecting an appropriate forwarding table based on a 
source address in said packets; and 

forwarding said packets to one of said ports based on a 
10 destination address in said packets and information in said 
appropriate forwarding table. 

2 . The method as defined in claim 1 wherein said 
packets are received at said ports by service interfaces which 

15 define realms each relating to a specific instance of an 
internetworking service function. 

3. A method as defined in claim 2 wherein said 
specific instance is a public Internet access service. 



20 



25 



4. A method as defined in claim 2 wherein said 
specific instance is a virtual private network (VPN) 
service . 

5. A method as defined in claim 4 wherein said VPN 
service is a bridged and/or routed connectivity service. 

6. A method as defined in claim 4 wherein said VPN 
service is a network layer connectivity service. 

7. A method as defined in claim 1 wherein said 
internetworking devices include an ATM backplane. 
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8. A packet forwarder for a communication system 
comprising : 

a plurality of ports; 

multiple service interfaces providing input to said 
ports, said service interfaces including source and 
destination addresses; 

multiple forwarding tables defining isolated realms to 
which said service interfaces belong based on said source 
information; and 

forwarding means to direct said service interfaces to an 
appropriate port based on the destination address and 
information in said forwarding table. 

9. A packet forwarder as defined in claim 8 wherein 
said plurality of ports include ingress ports and egress 
ports . 

10. A packet forwarder as defined in claim 8 wherein 
said isolated realms are assigned to specific network users. 

11. A packet forwarder as defined in claim 8 service 
interfaces relate to physical and logical connections. 

12. A packet forwarder as defined in claim 11 wherein 
said logical connections include multiple traffic flows from 
one or more ingress ports . 

13. A packet forwarder as defined in claim 8 wherein 
said isolated realms relate to a specific instance of an 
internetworking service function. 

14 . A system as defined in claim 13 wherein said 
internetworking service function is a Public Internet access 
service . 



15. A system as defined in claim 13 wherein said 
internetworking service function is a virtual private 
network (VPN) service . 

16 . A system as defined in claim 15 wherein said VPN 
service is a bridged and/or routed connectivity service. 

17 . A system as defined in claim 16 wherein said 
internetworking service functions are provided over an ATM 
network . 

18 . A system as defined 16 wherein said 
internetworking devices support multiple protocols. 

19. A system as defined in claim 18 wherein said 
internetworking devices provide services at both the packet 
and frame levels. 

20 . A system as defined in claim 19 wherein said 
internetworking services are managed by a single service 
provider. 

21 . A system as defined in claim 19 wherein said 
multiple protocol over ATM (MPOA) service includes a MPOA 
client lookup cache management function. 

22 • A system as defined in claim 8 wherein one of 
said internetworking devices is an internetworking services 
card for providing routed and bridged forwarding services. 
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